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An arrangement and a method for Content Policy Control in a 
Mobile Multimedia Messaging System 

Field of the invention 

The present invention relates to an arrangement and a 
method for enforcement and control of copyright and/or po- 
licy of data objects being transferred in a communication 
network. In particular, this invention relates to enforce- 
ment and control of copyrights and policies of data objects 
in messaging environments where value added content can be 
published, e.g. in Multimedia Messaging Service (MMS) en- 
vironments. 

Background of the invention 

Message services like SMS in GSM went through a fast growth 
just a few years after the worldwide launching of digital 
mobile communication network, and they are still growing in 
popularity. The recent exponential growth of e.g. value 
added Short-Messaging-Services (SMS) was triggered by the 
introduction of distribution and billing opportunities, 
provided by the mobile operators, to 3rd party value added 
service (VAS) and content providers. Some examples of VAS 
SMS are jokes (text format) , stock quotes (text format) , 
simple ringing tones (binary format) , black-and-white logos 
(binary format) . 

However, the fact that the first generation message ser- 
vices are text based will probably threaten their existence 
in the near feature, taking into account that multimedia 
services turns out to be customary. 

Because of this, the WAP forum and 3GPP have standardized a 
new message service for the mobile environment called Mul- 
timedia Messaging Service (MMS) [1] . To the end-user, MMS 
is very similar to the Short Message Service (SMS) : it pro- 
vides automatic immediate delivery for user created content 
from phone to phone. 
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However, the future of VAS MMS services has an even greater 
growth potential due to the advanced content capabilities 
of the MMS technology. Sophisticated multimedia content may 
be provided with VAS MMS services. Some examples of envis- 
aged value added MMS and content are "mobile greeting card 
portal" (such as sending pictures/animations, with or with- 
out sound from a portal to a mobile terminal) , "famous car- 
toon messages" (such as animations, with or without col- 
ours/audio) , "visual/audio quiz messages" (such as pic- 
ture/audio messaging games) , "talking head message" (such 
as rendering a personal text with a predefined animation) . 
VAS MMS will be offered to the end users by operators and 
by independent 3rd party service and content providers 
(e.g. media houses, portals, broadcasting corporations) 
that utilise the wireless MMS infrastructure of the opera- 
tors. 

Multimedia content has an inherently greater value to the 
content owners than plain text content (e.g. SMS). When 
publishing such content, it is important to the content 
providers or content owners that the content rights (copy- 
rights and policies) are enforced and that their revenue 
streams are secured. If not, the content providers will 
naturally not be interested in producing content for use in 
MMS. The publishing process thus needs to support copyright 
control and ensure that defined content policies are being 
obeyed . 

To increase MMS traffic, the mobile operator has to provide 
a solution to support these requirements allowing content 
owners to publish their content for value added MMS. 

Current attempts on content control are oriented towards 
the Internet model. The models normally require updates 
both to the content production process and to the client 
software rendering the resulting content. 

Two strategies are established for copyright control of 
Internet content. These are: 
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Digital watermark [2] that is a process where a pattern is 
added to the content. This pattern shall ideally be invisi- 
ble for the end-user, whereas the copyright control can 
filter and recognise this pattern. 

The clearinghouse [3] model is a model where the content is 
packaged in a container. When reading the content with a 
client that can interpret the specially packaged container, 
the container will authorize access to the content with a 
remote clearinghouse. 

One strategy is established for policy control of Internet 
content. This is: 

Platform for Internet Content Selection (PICS) [4] and 
Digital Signature (DSiG) [5] is a standard solution for de- 
fining and controlling meta-data for web content. This so- 
lution defines a language and a set of processing rules for 
controlling access to content. This allows e.g. parents to 
control what content their kids can access . 

The problems with the prior art are specified in the fol- 
lowing for each of the alternatives described above. 

For the Digital Watermarking model, the problems are: 

1. The solution cannot be used for all types of content 

2. The solution requires updates to the content produc- 
tion process 

3. The copyright control will be broken if the watermark 
is removed 

For the cl earinghouse model, the problems are: 

1. The solution requires updates to the content produc- 
tion process 
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2 . The solution requires special client software 

3. Control process is coupled to access of content rather 
than delivery of it 

a. This gives reduced security 

b. Control and payment is always coupled with re- 
ceiver (limiting business model) 

4. The establishment of new business roles (the clearing- 
house) is normally required 

5. Integration with existing systems in the mobile opera- 
tor domain is difficult 

6. The solution normally builds on digital certificates 
and Public Key Infrastructure. This may slow 

down/ complicate rollout of system (requires estab- 
lished policies) . 

For the PICS/ DSiG solution, the problems are: 

1 . Requirement of special client software (PICS enabled 
browsers) 

2. Rating of content needs to be carried out (long pro- 
cess) 

3 . Solution can be bypassed/ turned off as it is con- 
trolled by the end-user 

4. No complete solution for rights control for value 
added content (in a mobile environment) is provided 

Summary of the invention 

It is an object of the present invention to provide an ar- 
rangement and a method that eliminates the drawbacks de- 
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scribed above. The features defined in the claims enclosed 
characterize this method. 

More specifically, the present invention provides a method 
and an arrangement for enforcement and control of copyright 
and/or policy of a data object being transferred in a com- 
munication network by generating an electronic fingerprint 
unique to the electronic element. The fingerprint is com- 
pared with pre-generated electronic fingerprints stored in 
a database wherein each of said pre-generated fingerprints 
is linked to a certain policy and/or copyright concerning 
the fingerprint associated data object. If the electronic 
fingerprint matches one of the pre-generated electronic 
fingerprints, the policy and/or copyright restrictions 
linked thereto is/are enforced. 

The present invention is particularly useful in an MMS en- 
vironment, and meets the requirements for content rights 
control in the MMS service network. A preferred embodiment 
is a network centric model that is based on a fire- 
wall/gatekeeper model, where all messages are relayed 
through a control node where a filtering process is ap- 
plied. This filtering process fingerprints all transferred 
content and applies content policy control to the content 
of these messages. The solution works with all existing 
content and does not require updates to the client software 
(terminals) . 

The process for content policy control consists of two 
phases. When content is being published, a fingerprint is 
generated and stored in a lookup table with a reference to 
the policy meta-data for this content. When later content 
is transferred between clients, the same fingerprint is 
generated and used to look up the policy reference, thus 
enabling the policy to be enforced. 

The preferred embodiment proposes a Digital Rights Unit 
(DRU) consisting of 3 main components: 
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- A Policy Management Client (PMC) , that is used for 
defining content policies 

- A Content Control Engine (CCE) , that maps policies to 
transferred content, and 

- A Policy Enforcement Engine (PEE) , that enforces the 
content policies 

Brief description of the drawings 

In order to make the invention more readily understandable, 
the discussion that follows will refer to the accompanying 
drawings . 

Figure 1 illustrates MMS architecture and the components 
involved in message transfer between mobile handsets (peer- 
peer) and from a network server to a mobile handset (pub- 
lishing) . 

Figure 2 illustrates the components involved in the MMS 
publishing process and how these components interact ac- 
cording to an example embodiment of the present invention. 

Figure 3 illustrates the components involved in the MMS 
message transfer process for peer-peer communication be- 
tween two mobile handsets according to an example embodi- 
ment of the present invention. 

Detailed description of preferred embodiments 

The present invention will in the following be described in 
an MMS environment referring to the above-mentioned fig- 
ures. However, this does not represent any limitations to 
the invention. The present invention may be utilized in 
other similar applications, environments and contexts with 
other variations and substitutions without departing from 
the scope of the invention as defined by the attached inde- 
pendent claims. 
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The MMS message delivery process for value added content is 
depicted in figure 1. As illustrated, the message transfer 
may either be initiated from the network (i.e. published) 
or it may be initiated from a peer terminal (user-agent) . 
For value added content that is subject to policy control, 
the first delivery will always be initiated from the net- 
work (i.e. published) . The published content may then be 
distributed (forwarded) in a peer-peer fashion. The inven- 
tion builds on this nature for the distribution of value 
added content . 

The present invention meets the requirements for content 
rights control in the MMS service network. A preferred em- 
bodiment of the present invention is a network centric 
model that is based on a firewall/ gatekeeper model, where 
all messages are relayed through a control node where a 
filtering process is applied. This filtering process fin- 
gerprints all transferred content and applies content pol- 
icy control to the contents of these messages. The solution 
works with all existing content and does not require up- 
dates to the client software (terminals) . 

Examples of content and content elements that may comprise 
value added content /service data are audio files, pictures, 
animations, video, and text, and any combination of these. 

The process for content policy control consists of two 
phases. When content is being published, a fingerprint is 
generated and stored in a lookup table with a reference to 
the policy meta-data for this content. When later content 
is transferred between clients, the same fingerprint is 
generated and used to look up the policy reference, thus 
enabling the policy to be enforced. 

The preferred embodiment proposes a Digital Rights Unit 
(DRU) consisting of 3 main components: a Policy Management 
Client (PMC) , a Content Control Engine (CCE) , and a Policy 
Enforcement Engine (PEE) . 
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The Policy Management Client 

The PMC defines and activates the content policies of the 
controlled content. It consists of a client interface where 
polices may be created, updated and deleted, and a control 
function that initiates content control when content is be- 
ing published. 

The Content Control Engine 

The CCE filters the messages being transferred. It may be 
deployed as a standalone relay or it may be integrated with 
other message relay functions. When a message is received, 
the CCE will analyse the components of the message and ap- 
ply policy control to the respective message components. 

MMS messages are multipart-MIME [6] encoded with message 
blocks for each message element. The message elements are 
separated with MIME headers that define the content (e.g. 
the type and size) . The CCE will typically analyse these 
header fields and use them to invoke content specific con- 
trol functions . 

For each message component, the CCE will analyse the con- 
tent-type and apply a content specific control function 
(i.e. switching- control function based on content-type). 
The invoked control function will then generate a finger- 
print for the given content and check it against a local 
fingerprint database. If a hit is found, the CCE will re- 
turn a URL [7] that identifies the policy to be applied for 
that content . 

For a message consisting of multiple content-elements, sev- 
eral control functions will be invoked, possible resulting 
in several policies being identified and enforced. 

The Policy Enforcement Engine 

The PEE enforces the policies that the CCE identifies. When 
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being invoked with a new policy statement, it effectuates 
the policy and tells the client (the CCE or the PMC) if the 
content is allowed. In effectuating the policy, the PEE 
controls access rights to the content and generates the 
content charge information. 

In order to describe the process of content distribution 
and rights control, a typical usage scenario will now be 
described. The typical scenario consists of three steps, 
being the policy definition process, the publishing process 
and the transfer control process. 

The Policy Definition Process 

In the policy definition process, the content owner makes a 
value added content available, i.e. it is stored in a 
server /database connected to the communication network. At 
the same time, the associated content policy (e.g. meta- 
data) in the same or a different server/database. 

The Publishing Process 

The publishing process applies to content being delivered 
from a network server to a client terminal and its user- 
agent. The traffic flow is depicted in figure 1 and la- 
belled with (A) publishing. 

The Policy Management Client (PMC) carries out control of 
content being published (i.e. content being sent from a 
network server to an end-user) . The PMC will check if the 
published content has a defined policy and make sure that 
the policy is enforced and activated. 

The PMC may use different techniques to identify the policy 
of a content element. The content elements and policies are 
all identified by URLs (Uniform Resource Locator) [7] . 

a. A separate database may be used to map content URL to 
policy URL. Such a database will be written/updated 
when new content or policies are published. 
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b. Wrapper files containing both the reference to the 
content and the policy may be used. The PMC will sepa- 
rate the content and the policy from the wrapper file. 

c. A shadow policy directory (URL) may be used to map the 
policy to the content. In this case, all content URLs 
have a shadow policy URL where there is a fixed rela- 
tion between the two URLs (e.g. /image/cool . gif -> 
/image/cool_gif .policy) . 

When the PMC identifies a content element with a policy, it 
will request the Policy Enforcement Engine (PEE) to process 
the policy. In doing so, the PMC provides a reference to 
the policy and the identity of the message receiver. The 
PEE will then process this policy and return an ok status 
code if the content is allowed in this context. Content 
that is not allowed in the given context will be removed or 
replaced with a screening message (e.g. "Content requested 
not allowed") by the PMC before the message is delivered. 

When the Policy Enforcement Engine (PEE) is invoked to en- 
force a policy, it will do the following steps (or any com- 
binations thereof) to enforce the policy: 

a. Check if the receiver is allowed to receive the con- 
tent element from the sender. The check is performed 
by retrieving user information (e.g. address, age, 
prepaid account level) either from an independent da- 
tabase containing such information or from the data- 
base of the mobile operator and checking the user in- 
formation with the content policy (e.g. age group al- 
lowed, price policy, number series allowed) . 

b. Generate charging information to charge the sender for 
use of the content element. 

When access to content is granted, the PMC activates the 
policy control by generating a fingerprint for this content 
and adding that fingerprint and its associated policy ID to 
the fingerprint database. 
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The Transfer Control Process 

The content transfer control process applies to content be- 
ing transferred between two terminals and their user- 
agents. The traffic flow is depicted in figure 1 and la- 
belled with (B) peer-peer. 

The Content Control Engine (CCE) carries out control of 
transferred content. It may either be deployed as a stand- 
alone relay or it may be integrated with the MMS-C relay 
functions [1] . The task of the CCE is to filter transferred 
messages, identify the message elements and for each mes- 
sage element generate a fingerprint and check if this fin- 
gerprint has a defined policy. 

Examples of content and content elements that may comprise 
value added content/service data in a message and that is 
to be filtered, are audio files, pictures, animations, 
video, and text, and any combination of these. 

When the CCE identifies a content element with a policy, it 
will request the Policy Enforcement Engine (PEE) to process 
the policy. In doing so, the CCE provides a reference to 
the policy and the identity of the message sender and re- 
ceiver respectively. The identities of the message sender 
and receiver are retrieved by the CCE from the message ele- 
ments. The PEE will then process this policy and return an 
ok status code if the content is allowed in this context. 
Content that is not allowed in the given context will be 
removed or replaced with a screening message by the CCE be- 
fore the message is delivered. 

When the Policy Enforcement Engine (PEE) is invoked to en- 
force a policy, it will undergo the following steps (or any 
combination thereof) to enforce the policy: 

a. Check if the sender is allowed to send the content 
element to receiver 



WO 02/103968 



12 



PCT/NO02/00210 



b. Check if the receiver is allowed to receive the con- 
tent element from the sender. 

c. Generate charge information to charge the sender for 
use of the content element 

The check (a, b) is performed by retrieving user informa- 
tion (e.g. address, age, prepaid account level) either from 
an independent database containing such information or from 
the database of the mobile operator and checking the user 
information with the content policy (e.g. age group al- 
lowed, price policy, forwarding allowed/not allowed, number 
series allowed) . 

In the following, some supplemental information regarding 
parts of the process and architecture discussed above is 
disclosed. 

Identifying Message Elements 

During the process of analyzing message content, the PMC 
and CCE need to identify the message elements. This is done 
based on the MIME message encoding used for MMS messages. 
This message encoding separates each message element as a 
separate block in the message with separate message head- 
ers, such as content-type. 

Some examples of content-types (with associated formats) 
are GIF [8], JPEG [9], MP3 [10] , MPEG4 [11] , AMR [12]. 

The PMC and CCE rely on the MIME message encoding and will 
switch control routines based on the content-type pre- 
sented. This allows content- specif ic specialization of rou- 
tines used for generation of fingerprints and database 
lookup. This also allows the control routines to be dis- 
tributed, e.g. using one server for handling of image poli- 
cies and another server for audio policies. 

Generation of Fingerprints 
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Routines for generating fingerprints may be specialized per 
content-type. This allows new advanced fingerprint routines 
to be added on the fly as soon as new algorithms become 
available. Adding a new fingerprint routine consists of 
adding a new code entity (e.g. java class) and configuring 
the binding between content-type and class name. 

Examples of algorithms are: MD4 [13] and MD5 [14] . 

The Fingerprint Database 

The fingerprint database is a table that matches finger- 
prints with policy ID. The table is close to routing/ 
relaying of messages and needs to provide fast lookup. 

The fingerprint database needs to have a limited size and 
defined policy for how to handle table overflow (cache ag- 
ing policies) and leakage (cache leakage causing missing 
entries) . Preferably, a policy that accepts a fraction of 
overflow and leakage and builds that into the publishing 
model (all commerce solutions have a fraction of failed 
transactions, i.e. leakage, and this invention uses that 
fact to make a more efficient solution) is used. 

To reduce the amount of overflow and leakage, several solu- 
tions may be used. The simplest alternative is to increase 
the size of the table. Other alternatives are to use con- 
tent specific tables or have separate table areas per user. 
A preferred embodiment of the invention allows the security 
to be balanced against performance and cost at setup and 
configuration time. 

The Policy Database 

The fingerprint database is a database of XML [15] format- 
ted meta-data elements. Each meta-data element defines the 
policy for a given content element. The policy defines 
rules for accessing the content and content charges. 
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The policy database can easily be integrated with existing 
content databases and extend the functionality of these. 
This also supports integration with the provisioning sys- 
tems of the operators and portals. 

One advantage of the present invention is that it provides 
a secure solution for the mobile operator to handle en- 
forcement and control of copyrights and policies for pub- 
lished content . 

In addition, the invention provides a solution that extends 
the mobile operator's business model, supporting not only 
charging of value added content for the content owners, but 
also enforcement and control of the content owners' copy- 
rights and content policies with flexible business models 
(e.g. sender or receiver may be charged) . 

The present invention also integrates with the mobile op- 
erator's domain and infrastructure and cannot be by-passed 
in the message transfer process (i.e. good security, and 
forwarding of messages can be handled properly with en- 
forcement and control and with the desired business mod- 
els) . 

The invention may be deployed by the mobile operator as a 
stand-alone component within the mobile infrastructure or 
it may be deployed as an integrated component with other 
components (e.g., MMS-C) for optimization purposes. It does 
not rely on software updates to mobile terminals and their 
user- agents, i.e. terminal vendor independence, paramount 
to commercial applicability. 

A further advantage of the present invention is that it may 
be used for all content types. It does not require updates 
to the content production process. 

Further, the invention does not add content overhead (such 
as meta-data, watermark data) in the messages being trans- 
ported within the network and thus does not require extra 
message transport capacity. 
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The invention provides a fingerprinting solution that is 
inherently fast /efficient (small sized fingerprints solu- 
tion with fast algorithms are available, e.g. MD4) , compu- 
tational unique for content, may be optimized with differ- 
5 ent algorithms for specific content types, and may easily 
be upgraded (easy plug-in scheme) with new algorithms for 
specific content types as new and better/faster algorithms 
become available . 
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Patent claims 

1. An arrangement for enforcement and control of 
copyright and policy of a data object being transferred in 
a communication network, 
characterized in 

a first means adapted to generate an electronic 
fingerprint unique to said data object, 

a fingerprint database comprising pre-generated 
electronic fingerprints of data objects, each of which 
are linked to a certain policy and/or copyright 
concerning current fingerprint associated data object, 

a second means adapted to compare said fingerprint 
with said pre-generated fingerprints, 

a third means adapted to enforce the policy and/or 
copyright restrictions linked to said one of the pre- 
generated electronic fingerprints on said data object 
if said electronic fingerprint matches one of the pre- 
generated electronic fingerprints. 

2. Arrangement according to claim 1, 
characterized in 

a fourth means adapted to define, activate, create, 
update and/or delete said policy and/or copyright 
through an interface therein. 

3 * Arrangement according to claim 1 or 2 , 
characterized in that said data object is, 
or is an element of, a Multimedia Message Service (MMS) 
message, and that said database and/or said first, second, 
third and/or fourth means are integrated in, or connected 
to, an MMS architecture. 

4. Arrangement according to claim 3, 
characterized in 
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a fifth means adapted to identify and separate said 
element in said MMS message. 

5. Arrangement according to any of the preceding claims, 
characterized in that each of the pre- 
generated electronic fingerprints is generated by said 
first means and stored in said database as its associated 
data object is transmitted to a user requesting that data 
ob j ect . 

6. Arrangement according to any of the preceding claims, 
characterized in that said policy comprises 
rules for executing said data object and/or charging a user 
sending, receiving or requesting said data object. 

7. Arrangement according to claim 6, 

characterized in that said rules include 
filtering away, replacing and/or changing said data object 
when a certain receiver or sender of said data object is 
identified. 

8. Arrangement according to claim 6 or 7, 
characterized in that said policy is stored 
in a separate policy database, and that information 
concerning said charging is written into a separate 
charging database. 

9. Arrangement according to any of the preceding claims, 
characterized in that the pre-generated 
electronic fingerprints are stored in a look up table and 
that each of which are linked to a certain policy and/or 
copyright concerning current fingerprint associated data 
object by a URL. 

10. Arrangement according to any of the preceding claims, 
characterized in that the said database is 
a database of XML formatted meta-data elements. 
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11. Arrangement according to any of the preceding claims, 
characterized in that said communication 
network is a GSM, GPRS, or UMTS network. 

12. Arrangement according to any of the preceding claims, 
characterized in that said data object 
comprises value added content issued by a content provider. 

13. Arrangement according to any of the preceding claims, 
characterized in that said data object is 
transferred through said communication network on a peer- 
to-peer basis, i.e. from a first user terminal to a second 
user terminal . 

14. Arrangement according to any of the preceding claims, 
characterized in that said data object is 
an audio file, a picture, an animation, a video, a text 
string or any combination of these. 

15. Arrangement according to any of the preceding claims, 
characterized in that said first means 
includes routines for generating fingerprints specialized 
per data object type. 

16. Arrangement according to claim 15, 

characterized in that said first means is 
adapted to incorporate any new routine for generating 
fingerprints in addition to the already included. 

17. A method for enforcement and control of copyright 
and/or policy of a data object being transferred in a 
communication network, 

characterized in the following steps: 

a) Generating an electronic fingerprint unique to 
said data object, 

b) Comparing the electronic fingerprint with pre- 
generated electronic fingerprints stored in a 
database wherein each of said pre-generated 
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fingerprints are linked to a certain policy 
and/or copyright concerning current fingerprint 
associated data object, 

c) If said electronic fingerprint matches one of the 
5 pre-generated electronic fingerprints in step b) , 

enforcing the policy and/or copyright 
restrictions linked to said one of the pre- 
generated electronic fingerprints on said data 
object . 
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